An Attacker can Steal your Passwords while you are using Apple App store
Follow us socially to get News Fast:
Home / Apple Hacking / An Attacker can Steal your Passwords while you are using Apple App store

An Attacker can Steal your Passwords while you are using Apple App store

Before reading any posts on HNB, we would like to tell you that every post here is for your online security, safety or for awareness, and we do not teach hacking through our articles, if you find something which is being used to damage your online property or something like that, REPORT HERE.


English: A black version of an emblem used by ...
English: A black version of an emblem used by iOS app developers to indicate that something is available for download from the App Store. It has a image of an iPhone and reads “Available on the App Store”. (Photo credit: Wikipedia)
A security Flaw was in Apple iOs store from years which allowed attackers to steal the passwords and could install unwanted or expensive applications and this Flaw was founded by a Google developer Elie Burszteinand he helped Apple to fixed that security Flaw in their application store.


Actually this Flaw allow attackers to Hijack the connection, because Apple always neglected to use the encryption when iPhone or any other mobile phone tries to connect to the App store.



Elie Bursztein also said in his blog that after this flaw he alerted the Apple but the Apple only turned on the HTTPS for the app store.


What is Process of this Flaw?

We can tell you in short that how it can be done , An attacker only should be on the same network on which victim is and from there attacker can intercept the communications and insert his own commands.


What can Attacker do more?

  • Steal the Passwords
  • Forcing to purchase an app by swapping it with a different app that the buyer actually intented to get or by showing fake app updates
  • Prevent the victim to install an app

Enhanced by Zemanta

About Praveen Kashyap

Praveen KashyapI am blogging for news related to hacking, hackers, security, tips, tricks and about many more... from 2011. Also making you aware about latest online threats, hope I am doing my best, meet me on various social platforms.

Enter your email address to subscribe to this blog and receive notifications of new posts by email.

Scroll To Top